Object Not Found Session Error No Available Conn
Contents |
server project."
Error: Unable To Refresh Profile::session Error No Available Conn
Feb 2006 14:47:57 -0800 (PST) --- George Holbert
Libsldap: Could Not Remove From Servers List
wrote: > ldap name service over SSL, have you tried that yet on the Solaris 10 yea I tried, it
Error: Unable To Update From Profile
doesn't work. My ldap_client_file: # # Do not edit this file manually; your changes will be lost.Please use ldapclient (1M) instead. # NS_LDAP_FILE_VERSION= 2.0 NS_LDAP_SERVERS= cnyitlin02 NS_LDAP_SEARCH_BASEDN= dc=composers,dc=company,dc=com NS_LDAP_AUTH= simple NS_LDAP_SEARCH_REF= TRUE NS_LDAP_SEARCH_SCOPE= one NS_LDAP_SEARCH_TIME= 30 NS_LDAP_CACHETTL= 43200 NS_LDAP_PROFILE= libsldap status 2 mesg unable to load configuration var ldap ldap_client_file default NS_LDAP_CREDENTIAL_LEVEL= proxy NS_LDAP_SERVICE_SEARCH_DESC= passwd: ou=People,dc=composers,dc=company,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= group: ou=group,dc=composers,dc=company,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= shadow: ou=People,dc=composers,dc=company,dc=com?one NS_LDAP_SERVICE_SEARCH_DESC= netgroup: ou=netgroup,dc=composers,dc=company,dc=com?one NS_LDAP_BIND_TIME= 2 now, that works: -bash-3.00# ldaplist dn: cn=Directory Administrators, dc=composers,dc=caxton,dc=com dn: ou=People, dc=composers,dc=caxton,dc=com dn: ou=profile,dc=composers,dc=caxton,dc=com dn: ou=Groups, dc=composers,dc=caxton,dc=com but once I change NS_LDAP_AUTH= to tls:simple and restart cachemgr, no more: -bash-3.00# ldaplist ldaplist: Object not found (Session error no available conn. ) from the messages file: Feb 16 17:19:12 unknown ldap_cachemgr[1443]: [ID 293258 daemon.warning] libsldap: Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP server Feb 16 17:19:12 unknown ldap_cachemgr[1443]: [ID 292100 daemon.warning] libsldap: could not remove cnyitlin02 from servers list Feb 16 17:19:12 unknown ldap_cachemgr[1443]: [ID 293258 daemon.warning] libsldap: Status: 7 Mesg: Session error no av
Mar 2008 12:58:42 +0000 Importance: Normal Hi Claus and Roy, Thanks for the reply. In fact nothing to do with sendmail, I pasted the wrong lines from /var/adm/messages, sorry for that LDAP Server: OpenLdap Linux LDAP Clients: Linux, Solaris 10, Solaris 9 and Solaris 8 Following command works fine for Solaris 10 but it doesn't work for 8 and 9. Please help me I really need to sort out this. ldapclient -v manual -a defaultServerList=10.10.10.10 -a defaultSearchBase=dc=test,dc=com -a authenticationMethod=tls:simple -a serviceAuthenticationMethod=pam_ldap:tls:simple -a credentialLevel=proxy -a serviceAuthenticationMethod=passwd-cmd:tls:simple -a proxyDN=cn=proxyagent,ou=Profile,dc=test,dc=com -a proxyPassword=test When I ran https://www.redhat.com/archives/fedora-directory-users/2006-February/msg00142.html ldaplist I get following in /var/adm/messages on Solaris 9 Mar 21 23:35:38 web04 ldaplist[1932]: [ID 293258 user.warning] libsldap: Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP serverMar 21 23:35:38 web04 ldaplist[1932]: [ID 292100 user.warning] libsldap: could not remove 203.221.221.83 from servers listMar 21 23:35:38 web04 ldaplist[1932]: [ID 293258 user.warning] libsldap: Status: 7 Mesg: Session error no available conn. While http://www.openldap.org/lists/openldap-technical/200803/msg00116.html on server I get following in debugs Mar 21 23:29:50 rhapp04-t1 slapd[15119]: connection_read(10): checking for input on id=0Mar 21 23:29:50 rhapp04-t1 slapd[15119]: connection_read(10): TLS accept error error=-1 id=0, closingMar 21 23:29:51 rhapp04-t1 slapd[15119]: connection_closing: readying conn=0 sd=10 for close Really appreciate if someone shows me the right way to solve this issue. Cheers, Farhan -- From: farhhanahmed@hotmail.comTo: openldap-technical@openldap.orgSubject: RE: Solaris 10 Native LDAP Client TLSDate: Mon, 17 Mar 2008 13:01:56 +0000 Hi Guys,I have done it for Solaris 10 but now I am facing problem in Solaris 9. Please help meStill no luck with LDAP native client on Solaris 9. I am getting following messageMar 16 02:02:59 web04 sendmail[3700]: [ID 293258 mail.warning] libsldap: Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP serverBut when I run /usr/lib/ldap/ldap_cachemgr -g, I get following which shows there is no problemcachemgr configuration:server debug level 0server log file "/var/ldap/cachemgr.log"number of calls to ldapcachemgr 19cachemgr cache data statistics:Configuration refresh information: Previous refresh time: 2008/03/17 23:55:23Next refresh time: 2008/03/18 00:55:23Server information: Previous refresh time: 2008/03/17 23:55:23Next refresh time: 2008/03/18 00:05:23server: 203.221.221.83, stat
so, you must also use the fully-qualified name in your client config, e.g.: NS_LDAP_SERVERS= cnyitlin02.company.com instead of: NS_LDAP_SERVERS= cnyitlin02 If not, might be http://osdir.com/ml/linux.redhat.fedora.directory.user/2006-02/msg00147.html the cert DB version. Have you tried with a cert7 DB as generated by NSS 3.3.2? Also, it may help to start slapd with verbose debugging (I believe the -d switch). slapd will display the SSL error codes associated with your connection attempts, which you can google to match to a text description. Susan unable to wrote: --- George Holbert